J-Security Center

Latest Attack Object Updates
  • IDP Daily Update #1633
    posted: 03/17/10
  • NSM Daily Update #1633
    posted: 03/17/10
  • Deep Inspection 5.3r5 and above, 5.4, 6.0 #1633
    posted: 03/17/10
  • Deep Inspection 5.1 and 5.2 #1435
    posted: 03/17/10
  • Deep Inspection 5.0, 5.3r4 and below #1132
    posted: 03/28/08 (04/01/08 for 5.0)

Title: Multiple Cisco Wireless LAN Controllers Multiple Remote Vulnerabilities

Severity: CRITICAL

Description:

Cisco Wireless LAN controllers are used to control various wireless LAN functions.

Multiple Cisco Wireless LAN Controllers are prone to these remote vulnerabilities:

1. A denial-of-service vulnerability affects the Layer 3 Web authentication feature. This issue occurs because the device drops IP traffic (except DHCP and DNS traffic) from a client until a user provides correct authentication credentials. An attacker can exploit this issue by using a vulnerability scanner to cause the affected service to stop responding. This issue is tracked by CVE-2009-0056 and Cisco Bug ID CSCsq44516. This issue affects Cisco Wireless LAN Controller firmware 4.2 and later. This issue does not affect Cisco WLAN Controllers that are FIPS compliant because the device prohibits the Webauth' functionality from being enabled.

2. A denial-of-service vulnerability may cause the affected device to reload. This issue occurs when handling malformed HTTP POST requests sent to the 'login.html' script. This issue affects Cisco Wireless LAN Controller firmware 4.2 and later. This issue is tracked by CVE-2009-0059 and Cisco Bug ID CSCsm82364. This issue does not affect Cisco WLAN Controllers that are FIPS compliant because the device prohibits the Webauth' functionality from being enabled.

3. A denial-of-service vulnerability occurs when handling specially crafted IP packets. An attacker can exploit this issue to cause affected devices to become unresponsive. This issue affects Cisco Wireless LAN Controller firmware 4.1 and later. This issue is tracked by CVE-2009-0061 and Cisco Bug ID CSCso60979. This issue does not affect Wireless LAN Controller firmware 4.1.185.10.

4. A remote privilege-escalation vulnerability may allow a restricted attacker to gain full administrative access to the affected device. This issue affects only Wireless LAN Controller firmware 4.2.173.0; it does not affect Wireless network users. This issue is tracked by CVE-2009-0061 and Cisco Bug ID CSCso60979.

The following devices are affected:

Cisco 4400 Series Wireless LAN Controllers
Cisco Catalyst 6500 Series/7600 Series Wireless Services Module (WiSM)
Cisco Catalyst 3750 Series Integrated Wireless LAN Controllers

Affected Products:

  • Cisco 4400 Wireless LAN Controllers
  • Cisco Catalyst 3750 Series Integrated Wireless LAN Cont
  • Cisco Catalyst 6500 Series Wireless Services Module
  • Cisco Catalyst 7600 Series Wireless Services Module
  • Cisco Wireless LAN Control 4.1
  • Cisco Wireless LAN Control 4.2
  • Cisco Wireless LAN Control 4.2.173.0
  • Cisco Wireless LAN Control 5.0
  • Cisco Wireless LAN Control 5.1

References:

Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.